Open Source Network and System Security Tools

          The following are 15 essential security tools that will help you to secure your systems and networks. These open source security tools have been given the essential rating due to the fact that they are effective, well supported and easy to start getting value from.

1. Nmap - map your network and ports with the number one port scanning tool. Nmap now features powerful NSE scripts that can detect vulnerabilities, misconfiguration and security related information around network services. After you have nmap installed be sure to look at the features of the included ncat - its netcat on steroids.

2. OpenVAS - open source vulnerability scanning suite that grew from a fork of the Nessus engine when it went commercial. Manage all aspects of a security vulnerability management system from web based dashboards.

3. OSSEC - host based intrusion detection system or HIDS, easy to setup and configure. OSSEC has far reaching benefits for both security and operations staff.

4. Security Onion - a network security monitoring distribution that can replace expensive commercial grey boxes with blinking lights. Security Onion is easy to setup and configure. With minimal effort you will start to detect security related events on your network. Detect everything from brute force scanning kids to those nasty APT's.

5. Metasploit Framework - test all aspects of your security with an offensive focus. Primarily a penetration testing tool, Metasploit has modules that not only include exploits but also scanning and auditing.

6. OpenSSH - secure all your traffic between two points by tunneling insecure protocols through an SSH tunnel. Includes scp providing easy access to copy files securely. Can be used as poor mans VPN for Open Wireless Access points (airports, coffee shops). Tunnel back through your home computer and the traffic is then secured in transit. Access internal network services through SSH tunnels using only one point of access. From Windows, you will probably want to have putty as a client and winscp for copying files. Under Linux just use the command line ssh and scp.

7. Wireshark - view traffic in as much detail as you want. Use Wireshark to follow network streams and find problems. Tcpdump and Tshark are command line alternatives. Wireshark runs on Windows, Linux, FreeBSD or OSX based systems.

8. Kali Linux - was built from the foundation of BackTrack Linux. Kali is a security testing Linux distribution based on Debian. It comes prepackaged with hundreds of powerful security testing tools. From Airodump-ng with wireless injection drivers to Metasploit this bundle saves security testers a great deal of time configuring tools.

9. Nikto - a web server testing tool that has been kicking around for over 10 years. Nikto is great for firing at a web server to find known vulnerable scripts, configuration mistakes and related security problems. It won't find your XSS and SQL web application bugs, but it does find many things that other tools miss. To get started try the Nikto Tutorial or the online hosted version.

10. Trucecrypt As of 2014, the TrueCrypt product is no longer being maintained. Two new security tools, CipherShed and VeraCrypt were forked and have been through extensive security audits.

11. Moloch is packet capture analysis ninja style. Powered by an elastic search backend this makes searching through pcaps fast. Has great support for protocol decoding and display of captured data. With a security focus this is an essential tool for anyone interested in traffic analysis.

12. Bro IDS totes itself as more than an Intrusion Detection System, and it is hard to argue with this statement. The IDS component is powerful, but rather than focusing on signatures as seen in traditional IDS systems. This tool decodes protocols and looks for anomalies within the traffic.

13. Snort is a real time traffic analysis and packet logging tool. It can be thought of as traditional IDS, with detection performed by matching signatures. The project is now managed by Cisco who use the technology in its range of SourceFire appliances. An alternative project is the Suricata system that is a fork of the original Snort source.

14. OSQuery monitors a host for changes and is built to be performant from the ground up. This project is cross platform and was started by the Facebook Security Team. It is a powerful agent that can be run on all your systems (Windows, Linux or OSX) providing detailed visibility into anomalies and security related events.

15. GRR - Google Rapid Response a tool developed by Google for security incident response. This python agent / server combination allows incident response to be performed against a target system remotely.

Backup Solutions for Linux Systems

Backup of personal computers or servers is always important to prevent permanent data loss. Therefore getting to know different backup tools is very important especially for System Administrators who work with large amounts of enterprise level data and even on personal computers.

In this article, we shall take a look at top 10 outstanding backup tools that you can use on Linux servers or systems.

1.    Rsync

It is a command line backup tool popular among Linux users especially System Administrators. It feature rich including incremental backups, update whole directory tree and file system, both local and remote backups, preserve file permissions, ownership, links and many more.

It also has a graphical user interface called Grsync but one advantage with the rsync is that backups can be automated using scripts when used by experienced System Administrators on the command line.

2. Fwbackups

It is free and open source software which is cross platform and feature rich and users can contribute to it’s development or just participate in testing it. It has an intuitive interface that allows users to do backups easily.

It has features such as:

Simple interface

Flexibility in backup configuration

Remote backups

Backup entire file system

Exclude files and directories plus many more

3. Bacula

It is open source data backup, recovery and verification software that is designed to be enterprise ready with certain complexities, though these complexities actually define it’s powerful features such as backup configurations, remote backups plus many more .

It is network based and is made up of the following programs:

A director : program that supervises all operations of Bacula.

A console : program that allows a user to communicate with the Bacula director above.

A file: program that is installed on the machine to be backed up.

Storage: program that is used to read and write to your storage space.

Catalog: program responsible for the databases used.

Monitor: program that keeps track of all events happening in different parts of Bacula.

4. Backupninja

It is powerful backup tool that allows users to design backup activity configuration files that can be drooped in /etc/backup.d/ directory. It helps to perform secure, remote and also incremental backups over a network.

It has got the following features:

Easy to read ini style configuration files.

Use scripts to handle new types of backups on your system.

Schedule backups

Users can choose when status report emails are mailed to them.

Easily create backup action configuration file with console-based wizard (ninjahelper).

Works with Linux-Vservers.

5. Simple Backup Suite (sbackup)

It is backup solution for Gnome desktop where users can access all configuration via Gnome interface. Users can use regex to specify file and directory paths during the backup process.

It has the following features:

Creates compressed and uncompressed backups.

Supports multiple backup profiles.

Allows logging, email notifications.

Scheduled backups and manual backups.

Split uncompressed backups into several chunks.

Supports local and remote backups.

6. Kbackup

It is an an easy to use backup tool for Unix operating system and can be used on Linux. It can create archives and compress them using tar and gzip utilities respectively.

Kbackup has got the following features:

User friendly and menu driven interface.

Support for compression, encryption and double buffering.

Automated unattended backups.

High reliability.

Support for full or incremental backups.

Remote backup across networks.

Portable and extensive documentation among others.

7. BackupPC

It is a cross platform backup software that can run on Unix/Linux, Windows and Mac OS X. It is designed to for enterprise level use with high performance measure. BackupPC can be used on servers, desktop and laptop computers.

It has some of the following features:

File compression to reduce disk space usage.

No need for client side software.

Flexibility during backup restoration

Flexibility in configuring through different parameters.

User notifications about need for backups and so on.

8. Amanda

Amanda is an open source software that works on Unix/GNU Linux and Windows. It supports native backup utilities and formats such as GNU tar for backups on Unix/Linux. And for backups on Windows machine, it uses native Windows client. Users can setup a single backup server to store backups from several machines on a network.

9. Back In Time

It is simple and easy to use backup tool for Linux operating system and works by taking snapshots of specified directories and backing them up.

It has features such as configuring:

Storage location to save snapshots.

Manual or automatic backups.

Directories to backup.

10. Mondorescue

This is a free backup and rescue software which is reliable and all features-inclusive. It can perform backups from personal computers, work stations or servers to hard disk partitions, tapes, NFS, CD-[R|W], DVD-R[W], DVD+R[W] and many more.

It also has data rescue and recovery abilities during backup process in case of any destructive events.

11. Box Backup Tool

It is an open source backup tool and can be configured to work automatically.

It has features such as:

Online backups.

Backup daemon for automated backups.

Storage of backups in files.

Data compression and encryption.

Tape like behavior.

Choice of backup behavior plus many others.

12. Luckybackup

It is a free powerful, quick, reliable and easy to use backup and sync tool that is powered by the rsync backup tool.

It is feature-rich with features such as:

Preserve ownership and file permissions.

Create multiple backup snapshots.

Advanced options files and directories.

Exclude options and use rsync options and many more.

13. Areca

It is an open source backup tool that is intended for personal use and it allows a user to select a set of files or directories to backup and select the backup method and storage location.

It has features such as:

Email notifications about backup process.

Simplicity in use in terms of configurations.

Browse archives and many more.

14. Bareos Data Protection

It is an open source set of programs that allows users to backup, recover and protect data on Linux systems. It is an idea forked from the Bacula backup tool project and works on a network in a client/server architecture.

The basic functionalities are free but payment is required to use professional backup features. It has features of Bacula backup tool.

-15. BorgBackup

BorgBackup is a free open source, efficient as well as secure command-line based DE duplicating archive/backup tool with support for compression and authenticated encryption. It can be used to perform daily backups and only changes in files since last backup are archived, using the DE duplicating approach.

The following are some its key features:

It is easy to install and use.

Supports encryption of all data.

Uses authenticated encryption technique to ensure secure backups.

It is also very fast.

Supports space efficient storage.

Also supports optional compression of data.

Supports remote backups over SSH.

Supports mounting backups in the same way as file systems.